ss7
Latest
Saudi Arabia may be spying on its citizens via US mobile networks
Data shared by a whistleblower suggests Saudi Arabia may be using a weakness in mobile telecom networks to track its citizens in the US, The Guardian reports. The data shows that over a four-month period, Saudi Arabia's three biggest mobile phone companies sent 2.3 million requests for Provider Subscriber Information (PSI). Normally, that data is used to help foreign operators register roaming charges, but the high volume of requests could also give the Saudi telecoms enough info to track users within hundreds of meters of accuracy.
Democrats demand the FCC tackle cybersecurity
Two Democrats in Congress are imploring FCC head Ajit Pai to address cybersecurity issues in the United States, arguing vulnerabilities in cellular networks infringe on citizens' liberties and pose a "serious threat" to national security. Sen. Ron Wyden and Rep. Ted Lieu penned a letter to Pai laying out known issues in modern communications systems and asking the FCC to step in. However, that's unlikely to happen.
How '60 Minutes' played 'Telephone' with public-hacking hysteria
On Sunday, 60 Minutes took a year-old segment on phone hacking it shot and aired in Australia, fluffed it up with other old hacks from last year's Def Con and repackaged it for an American audience. Almost no one noticed those particular details. But just about everyone panicked. "Hacking Your Phone" set off a scare that raged through headlines and social media all week. As the miasmic cherries on top, the episode also freaked out California Rep. Ted Lieu (D), who has called for a congressional investigation, and the FCC is now involved.
Congressman calls for probe of longstanding mobile security flaw
It's no secret that Signaling System 7 -- a set of crucial protocols that define how phone calls, messages and data are routed through networks -- is flawed. Thanks to a recent report by 60 Minutes, though, at least one member of Congress was spooked enough to try and do something about it. According to The Daily Dot, Rep. Ted Lieu (D-CA) is now calling for a full investigation into the flaw that let a well-known security researcher track his movement through Los Angeles and record his phone calls without his knowledge.
Phone network security flaw lets anyone bug your calls
Remember that vulnerability in the SS7 inter-carrier network that lets hackers and spies track your cellphone virtually anywhere in the world? It's worse than you might have thought. Researchers speaking to Australia's 60 Minutes have demonstrated that it's possible for anyone to intercept phone calls and text messages through that same network. So long as the attackers have access to an SS7 portal, they can forward your conversations to an online recording device and reroute the call to its intended destination. This helps anyone bent on surveillance, of course, but it also means that a well-equipped criminal could grab your verification messages (such as the kind used in two-factor authentication) and use them before you've even seen them.
Governments are buying tools that track your phone nearly anywhere
Don't think that widespread cellphone surveillance is the sole province of big nations like the US and UK; apparently, it's within reach of just about any country with enough cash and willing carriers. The Washington Post understands that "dozens" of countries have bought or leased surveillance tools that let them track phones around the world with relative ease, so long as providers cooperate. The software exploits poor security in SS7, an inter-carrier network, to get your rough location by plugging in your phone number. With enough queries, suspicious governments (and well-connected gangs) can easily find out where you're going, whether you're in town or on the other side of the planet. To make things worse, these systems are frequently paired up with StingRays and other devices that can both get more accurate positioning and intercept phone traffic.
